Breach

MOVEit victims emerge: British Airways, BBC and Province of Nova Scotia

Malware

MOVEit victims emerge: British Airways, BBC and Nova Scotia

Simon HenderyJune 6, 2023

Users of MoveIT Transfer 'should assume compromise, not just patch', say experts.

Careers

The Company’s Lawyer is Not Your Lawyer – Legal Self Defense – Larry Dietz – CSP #125

June 6, 2023

Joe Sullivan has shown all of us that CISOs are on the front lines when it comes to breaches and their legal aftermath. Unfortunately, most CISOs are not attorneys and may not understand the rules of engagement with law enforcement to the point where they may find themselves in legal jeopardy for ‘doing the right thing’. Join Larry Dietz long time ...

Vulnerability management

Prepping for Security Incidents, Automated Validation & No-Code Automation Revolution – Amitai Ratzon, Jon Check, Thomas Kinsella – ESW #319

May 25, 2023

The reality is no organization is insusceptible to a breach – and security teams, alongside the C-suite, should prepare now to make the response more seamless once a crisis does happen. Based on his experience working 1:1 with security leaders in the private and public sectors, Jon Check, executive director of Cyber Protection Solutions at Raytheon...

Security awareness

Uber breaches, security awareness saturation, cybercrime P&L, sad acquisitions and AI – ESW #319

May 25, 2023

On this edition of the ESW news, we're all over the place! Funding and acquisitions are a little sad right now, but AI and TikTok bans raise our spirits. The hosts are split on feelings about the new .zip gTLD, there's a new standard for scoring an "AI Influence Level" (AIL), and lessons learned from Joe Sullivan's case and other Uber breaches. Als...

Electronic medical record with patient data and health care info

Breach

Why are 1.8M Apria patients just now being notified of a 2021 data breach?

Jessica DavisMay 24, 2023

HIPAA requires entities to disclose breaches within 60 days, but it took 18 months for Apria Healthcare to inform over 1.8 million patients.

Leadership

Using Data to Estimate Cyber Risk Financial Implications – Paul Sand – CSP #123

May 23, 2023

The CISO who can speak to the financial implications of cyber risk will be able to successfully work amongst the C-suite and in the board room to prioritize and address cyber initiatives. Building a view of the financial implications of those risks based on real data enhances not only the CISO’s decision-making ability but also the CISO’s credibili...

Data security

It’s All About the Data: Understanding Your Blast Radius to Reduce Risk – Matt Radolec – BSW #307

May 22, 2023

You can rebuild infrastructure. But you can’t un-breach data – Data sits at the core of an organization and is often the most open and vulnerable. This is why data security is the most important and urgent security problem to solve right now. We’re joined by Matt Radolec, Senior Director of Incident Response and Cloud Operations at Varonis, to wal...

Privacy

Mountains of backups, Softbank takes an L, and the need for breach transparency – ESW #318

May 18, 2023

This week, we discuss fundings, acquisitions (TWO DSPM exits!), the ongoing market downturn/weirdness, and surprise - LLM-based AIs! We spend a fair amount of time talking about the importance of breach transparency - we need to be able to learn from others' failures to improve our own defenses. We also discuss the inevitable 'One App To Rule them ...

Breach

Related events

Part 2: Detection & Response Demo: Patrolling Every Packet & Process for Signs of Compromise

Stemming the rising tide of fraud with machine learning and AI

Related Videos

Watch: FBI encourages reporting of cyber incidents, backs legislation

Related Perspectives

Lesson learned from the US Marshals Service cyber incident: we’re all targets – and the stakes are high

Want to stop modern cyberattacks? Use XDR with identity

Four ways to maximize a cybersecurity budget

Briefs

YKK’s US networks impacted by cyberattack

Capita hack-related breaches reported by nearly 90 orgs

Data breach confirmed by Luxottica after leak of over 70M customers’ records

MOVEit victims emerge: British Airways, BBC and Nova Scotia

The Company’s Lawyer is Not Your Lawyer – Legal Self Defense – Larry Dietz – CSP #125

Prepping for Security Incidents, Automated Validation & No-Code Automation Revolution – Amitai Ratzon, Jon Check, Thomas Kinsella – ESW #319

Uber breaches, security awareness saturation, cybercrime P&L, sad acquisitions and AI – ESW #319

Why are 1.8M Apria patients just now being notified of a 2021 data breach?

Using Data to Estimate Cyber Risk Financial Implications – Paul Sand – CSP #123

It’s All About the Data: Understanding Your Blast Radius to Reduce Risk – Matt Radolec – BSW #307

Mountains of backups, Softbank takes an L, and the need for breach transparency – ESW #318